Log4Shell-Critical Remote Code Execution Vulnerability in H2database Console
JFrog has recently disclosed a remote code execution vulnerability on H2 Database consoles. This is based on a Java Naming…
Microsoft Open Management Infrastructure (OMI) Critical Vulnerabilities Under Active Exploitation – OMIGOD
Microsoft Open Management Infrastructure (OMI) is an open-source project which allows users to manage configurations across remote and local environments…
Zoho Patches Critical Zero-day Flaw in its ADSelfService plus Exploited in The Wild
Zoho recently published a security advisory to patch a remote code execution (RCE) vulnerability existing in Zoho ADSelfService plus. The…
Sophos UTM Creating a ‘Big’ Bounty with Remote Code Execution Flaw
A critical and high severity remote code execution vulnerability with CVSS 3.x severity base score 9.8 is discovered in Sophos…
WinRM servers are the latest preys for the Wormable Windows HTTP vulnerability
Microsoft recently patched a critical remote code execution vulnerability in the HTTP Protocol Stack (http. sys), used by the Windows…
Second Zero-Day Exploit for Google Chrome in the Same Week
Google Chrome users who were relieved by patching the recent zero-day advisory are taken aback by the news of another…
QNAP Patches Critical Vulnerabilities in NAS Appliances
QNAP addresses multiple vulnerabilities in its product line affecting Surveillance Station and Photo Station applications. These vulnerable software applications are…
Critical Zero-Day in HPE Systems Insight Manager Revealed
Hewlett Packard Enterprise recently revealed a security flaw in its Systems Insight Manager software. This zero-day bug resides in the…
Zoom Zero-Day Critical Vulnerability Allows RCE
A critical zero-day vulnerability has been found in Zoom - A video conferencing software, for Windows 7 or below. The…
F5 BIG-IP Devices Under Active Exploitation (CVE-2020-5902)
F5 BIG-IP is a multi-purpose networking device manufactured by F5 Networks which can be configured to work as traffic shaping…